升级服务器openssh版本

升级服务器openssh版本

（1）参考命令：

安装编译工具

# yum install gcc pam-devel openssl-devel gcc-c++ make -y

备份当前sshd

# mv /etc/ssh /etc/ssh.old

# mv /etc/init.d/sshd /etc/init.d/sshd.old

卸载当前sshd

# rpm -qa | grep openssh

openssh-5.3p1-124.el6_10.x86_64

openssh-askpass-5.3p1-124.el6_10.x86_64

openssh-clients-5.3p1-124.el6_10.x86_64

openssh-server-5.3p1-124.el6_10.x86_64

# rpm -e --nodeps openssh-5.3p1-124.el6_10.x86_64

# rpm -e --nodeps openssh-askpass-5.3p1-124.el6_10.x86_64

# rpm -e --nodeps openssh-clients-5.3p1-124.el6_10.x86_64

# rpm -e --nodeps openssh-askpass-5.3p1-104.el6.x86_64

# rpm -qa | grep openssh

openssh安装前环境配置

# install -v -m700 -d /var/lib/sshd 创建sshd目录

# chown -v root:sys /var/lib/sshd   修改sshd所属组

# groupadd -g 50 sshd

# useradd -c 'sshd PrivSep' -d /var/lib/sshd -g sshd -s /bin/false -u 50 sshd

解压openssh源码并编译安装

tar -zxf openssh-8.2p1.tar.gz

cd openssh-8.2p1

./configure --prefix=/usr --sysconfdir=/etc/ssh --with-md5-passwords --with-pam --with-ssl --with-zlib --with-openssl-includes=/usr --with-privsep-path=/var/lib/sshd mandir=/usr/share/man/

 make && make install

openssh安装后环境配置

# 在openssh编译目录执行如下命令

# install -v -m755    contrib/ssh-copy-id /usr/bin

# install -v -m644    contrib/ssh-copy-id.1 /usr/share/man/man1

# install -v -m755 -d /usr/share/doc/openssh-8.2p1

# install -v -m644    INSTALL LICENCE OVERVIEW README* /usr/share/doc/openssh-8.2p1

# ssh -V              

启用OpenSSH服务

# 在openssh编译目录执行如下目录

# cp -p contrib/redhat/sshd.init /etc/init.d/sshd

# chmod +x /etc/init.d/sshd

# chkconfig  --add  sshd

# chkconfig  sshd  on

# chkconfig  --list  sshd

# service sshd restart